Tom Gilheany @tomgilheany - Bluesky Profile

BSidesSF BSidesSF 2026 will be held March 21-22! The Call for Participation (CFP) is now open! We are now accepting submissions for presentations, workshops, and other sessions for BSidesSF ...

#BSidesSF #BSides BSidesSF 2026 call for Participation is open! If you're interested in being a presenter at BSidesSF (and for a possible chance at presenting on the big IMAX screen!), gather your co-presenters and your best security ideas! bsidessf.org

10.09.2025 20:30 — 👍 1 🔁 0 💬 0 📌 0

Leadership and Influence When Everything’s on Fire with Lynne Levy, CEO and Coach, The Inspired Leader - Silicon Valley Product Management Association How to lead, stay visible, and protect your sanity in times of chaos. Date/Time: Wednesday, August 20, 2025 at 7pm PST online via Zoom Speaker: Lynne Levy, CEO and Coach, The Inspired Leader Topic: Le...

Are you a Product Professional or Startup Founder whose org. is always in Firefighting Mode? Join us online next Wed. in welcoming Lynne Levy - hear the secrets of "Leadership & Influence When Everything's On Fire". #productmanager #FOUNDER svpma.org/events/month...

15.08.2025 11:55 — 👍 1 🔁 0 💬 0 📌 0

📢 Marks & Spencer’s ransomware nightmare – more details emerge
https://www.bitdefender.com/en-us/blog/hotforsecurity/marks-spencers-ransomware-nightmare-more-details-emerge

06.06.2025 16:36 — 👍 0 🔁 1 💬 0 📌 0

OpenAI takes down covert operations tied to China and other countries The company said China and other nations are covertly trying to use chatbots to influence opinion around the world. In one case, operatives also used the tools to write internal performance reports.

www.npr.org/2025/06/05/n...

06.06.2025 16:38 — 👍 1 🔁 0 💬 0 📌 0

Looking forward to hearing from Jen Easterly & Chris Krebs at #RSAC2025 #RSAC shortly!

01.05.2025 16:35 — 👍 0 🔁 0 💬 0 📌 0

Live streams from the BSides San Francisco 2025 security conference, which are taking place over the weekend, are available on YouTube

www.youtube.com/@BSidesSF/st...

26.04.2025 19:25 — 👍 18 🔁 7 💬 0 📌 2

Radio check before the second day of setup for #BSidesSF! All charged and ready! #CyberSecurity #RSAC #infosec

25.04.2025 11:28 — 👍 3 🔁 0 💬 0 📌 0

NowSecure Uncovers Multiple Security and Privacy Flaws in DeepSeek iOS Mobile App - NowSecureShare on LinkedinShare on XShare on FacebookShare on Mastodon A NowSecure mobile application security and privacy assessment has uncovered multiple security and privacy issues in the DeepSeek iOS mobile app that lead As the top iOS app since Jan 25, 2025, the De...

1. Unencrypted Data Transmission
2. Hardcoded Encryption Keys
3. Insecure Data Storage (including Username, password & encryption keys).
...
Basic software and application security minimum requirements!
#AI #GenAI #DeepSeek #Cybersecurity #OWASP #AppSec

www.nowsecure.com/blog/2025/02...

10.02.2025 21:43 — 👍 1 🔁 0 💬 0 📌 0

Proposed HIPPA Updates: www.hhs.gov/hipaa/for-pr... #HIPPA #Cybersecurity

29.12.2024 16:58 — 👍 0 🔁 0 💬 0 📌 0

FTC orders Marriott and Starwood to boost cybersecurity following major incidents Firms told they failed to implement ‘reasonable data security’

FTC orders #Marriott and #Starwood to boost #cybersecurity following major incidents
www.techradar.com/pr...

26.12.2024 16:10 — 👍 1 🔁 1 💬 0 📌 0

Airline hit by a cyberattack, delaying flights during the year-end holiday season Japan Airlines has been hit by a cyberattack that caused delays to more than 20 domestic flights, but it managed to restore its systems within hours.

Japan Airlines said it was hit by a cyberattack, causing delays to more than 20 domestic flights but the carrier said it was able to stop the onslaught and restore its systems hours later. Read more at @AssociatedPress. #JapanAirlines #CyberSecurity #Tech #Technology https://flip.it/mJrcQ-

26.12.2024 16:13 — 👍 0 🔁 2 💬 0 📌 0

Fabian Bader (@fabian_bader@infosec.exchange) Attached: 1 image NO-BREAK SPACE unicode characters in the display name are not something your average M365 users use. So better look into #Teams chat messages from those users. #SecurityTip #KQL https://github.com/f-bader/AzSentinelQueries/blob/master/Defender%20XDR/SuspiciousTeamsMessagesBasedOnUnicodeInDisplayName.md

If you allow people outside of your organization to initiate Teams chats with your users, I’d definitely look for this.
#cybersecurity

From: @fabian_bader
https://infosec.exchange/@fabian_bader/113686636768785688

20.12.2024 19:23 — 👍 0 🔁 1 💬 0 📌 0

Researchers Crack Microsoft Azure MFA in an Hour

Researchers Crack Microsoft Azure MFA in an Hour

11.12.2024 20:59 — 👍 12 🔁 6 💬 0 📌 0

Microsoft Fixes Zero-Day, Critical RCEs in Patch Tuesday The zero-day (CVE-2024-49138), plus a worryingly critical unauthenticated RCE security vulnerability (CVE-2024-49112), are unwanted gifts for security admins this season.

Actively Exploited Zero-Day, Critical RCEs Lead Microsoft Patch Tuesday - https://mwyr.es/qxoDYhkf #darkreading #infosec #microsoft

12.12.2024 10:11 — 👍 1 🔁 1 💬 0 📌 0

Apple Pushes Major iOS, macOS Security Updates Cupertino ships iOS 18.2 and macOS Sequoia 15.2 patches to fix data leakage, sandbox escapes and code exection vulnerabilities.

Apple Pushes Major iOS, macOS Security Updates - https://mwyr.es/WZ8p0eT4 #securityweek #infosec #apple

12.12.2024 10:13 — 👍 3 🔁 2 💬 0 📌 0

U.K. cybersecurity chief warns of gap between risks and defenses A warning issued by the new head the United Kingdom's National Cyber Security Centre (NCSC) should be sobering to cybersecurity pros every...

UK's cyber chief warns of a serious gap between cyber threats and defenses. The NCSC reports a threefold increase in serious cyber incidents. jpmellojr.blogspot.com/2024/12/uk-c... #CyberSecurity #CyberThreats #GCHQ #NCSC

11.12.2024 23:09 — 👍 1 🔁 1 💬 0 📌 0

New Guidance for Federal AI Procurement Embraces Red Teaming and Other HackerOne Suggestions

https://www.hackerone.com/public-policy/federal-ai-procurement-guidance

#cybersecurity #infosec #security #hacker

10.12.2024 16:45 — 👍 1 🔁 2 💬 0 📌 0

A critical vulnerability (CVE-2024-49600) in Dell Power Manager (versions before 3.17) allows local attackers to execute malicious code. Update to version 3.17 or later immediately. No workarounds exist.

10.12.2024 17:00 — 👍 2 🔁 2 💬 1 📌 0

The Quiet HTTPS Revolution In a recent post, I explained that the websites I visit on my Chromebook are almost all delivered over HTTPS. Better still, 100% of the…

🔐 In case you missed my thoughts on HTTPS:
https://buff.ly/3Z9euRV

We still have a long way to go before products are secure by design, but let’s not overlook the massive improvements in network security over the past decade. Enjoy that café Wi-Fi and ignore the evil barista hacklore. 😉

09.12.2024 10:00 — 👍 9 🔁 2 💬 2 📌 1

Multiple QNAP Vulnerabilities Let Remote Attackers To Compromise The System Remotely QNAP Systems has disclosed multiple critical vulnerabilities affecting its QTS and QuTS hero operating systems.

Multiple QNAP Vulnerabilities Let Remote Attackers To Compromise The System Remotely

09.12.2024 08:42 — 👍 2 🔁 2 💬 0 📌 1

How Chinese insiders exploit its surveillance state 'It's a double-edged sword,' security researchers tell The Reg

How Chinese insiders are stealing data scooped up by President Xi's national surveillance system

08.12.2024 17:17 — 👍 5 🔁 3 💬 0 📌 0

In the new space race, hackers are hitching a ride into orbit As space exploration rapidly evolves, so do the cybersecurity threats facing spacecraft, satellites, and space-based systems.

Cybersecurity......in......spaaaaaaace! This article parallels a fascinating presentation I attended last month, given by a Cybersecurity professional at NASA/JPL. When your operating environment changes drastically, if affects security drastically as well! www.cnbc.com/2024/11/30/i...

02.12.2024 18:54 — 👍 0 🔁 0 💬 0 📌 0

It's that time of year again!

12.11.2024 16:04 — 👍 5 🔁 2 💬 0 📌 0

Tom Gilheany

Latest posts by tomgilheany.bsky.social on Bluesky

@tomgilheany is following 18 prominent accounts